Identifying and Tracking Emerging and Subversive Worms Using Distributed Intrusion Detection Systems

by Nathan Einwechter
Sept. 24, 2017 0 comments Symantec Detection & Response ids security SecurityFocus

Worms continually become more sophisticated, as new propagation methods and stealth techniques are developed and implemented. As worms continue to evolve, so must our ability to detect and track them. One solution is the use of distributed intrusion detection systems (dIDS) to identify new and emerging worms that utilize new subversive propagation techniques. This paper will discuss how and why the dIDS design is able to identify, detect, and track worms even as they implement more advanced propagation methods.